邵必林, 燕佳芬, 边根庆. 缓冲区溢出漏洞综合检测方法研究[J]. 微电子学与计算机, 2015, 32(7): 99-102. DOI: 10.19304/j.cnki.issn1000-7180.2015.07.023
引用本文: 邵必林, 燕佳芬, 边根庆. 缓冲区溢出漏洞综合检测方法研究[J]. 微电子学与计算机, 2015, 32(7): 99-102. DOI: 10.19304/j.cnki.issn1000-7180.2015.07.023
shu
SHAO Bi-lin, YAN Jia-fen, BIAN Gen-qing. Research on Comprehensive Detection of Buffer Overflow Vulnerability[J]. Microelectronics & Computer, 2015, 32(7): 99-102. DOI: 10.19304/j.cnki.issn1000-7180.2015.07.023
Citation: SHAO Bi-lin, YAN Jia-fen, BIAN Gen-qing. Research on Comprehensive Detection of Buffer Overflow Vulnerability[J]. Microelectronics & Computer, 2015, 32(7): 99-102. DOI: 10.19304/j.cnki.issn1000-7180.2015.07.023
shu

缓冲区溢出漏洞综合检测方法研究

Research on Comprehensive Detection of Buffer Overflow Vulnerability

    摘要
  • 摘要: 缓冲区溢出漏洞静态检测工具普遍存在误报率和漏报率高的问题,基于此,提出了一种缓冲区溢出漏洞综合检测方法,该方法将不同原理的静态检测工具进行综合,通过检测结果之间的相互验证,相互补充,达到有效降低误报率和漏报率的目的.实验结果表明,相比单个检测工具,该方法对降低检测结果的误报率和漏报率效果明显.

     

    Abstract: Static detection tools of buffer overflow widespread have problems of high false positives and false negatives. For this, this thesis propose a comprehensive detecting program of buffer overflow vulnerabilities, which integrated different tools of static detection based on different principles to validate results each other, complement each other. To do this can effectively decline false positives and false negatives. Experimental results show that compared single detection tool, the program significantly reduces the rate of false positives and false negatives of detecting result.

     

    • HTML全文
    • 参考文献(0)
    • 相关文章
    • 施引文献
  • 资源附件(0)

/

返回文章
返回